Skip to main content
CVE-2022-44897 MEDIUM POC This Month

A cross-site scripting (XSS) vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ap Pagebuilder
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.8%
CVE-2023-0593 MEDIUM POC PATCH This Month

A path traversal vulnerability affects yaffshiv YAFFS filesystem extractor. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Path Traversal Yaffshiv
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0592 MEDIUM POC PATCH This Month

A path traversal vulnerability affects jefferson's JFFS2 filesystem extractor. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Path Traversal Jefferson
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-0591 MEDIUM POC PATCH This Month

ubireader_extract_files is vulnerable to path traversal when run against specifically crafted UBIFS files, allowing the attacker to overwrite files outside of the extraction directory (provided the. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Path Traversal Ubi Reader
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy